Tasks
- Provide technical support to global users by addressing security issues promptly and effectively.
- Utilize various tools and platforms to detect and prevent access to malicious websites and software.
- Continuously monitor security logs and events using Splunk, and investigate any anomalies in collaboration with other teams.
- Conduct deep investigations of security threats/incidents and respond to network attack events and assist users with investigations of phishing emails.
- Execute emergency device locking and data wiping procedures as required.
- Utilize various tools and platforms to detect and prevent access to malicious websites and software.
- Stay up-to-date with the latest trends in cybersecurity, including emerging threats, vulnerabilities, and regulatory requirements.
- Collaborate with the Global team to deliver around-the-clock technical support.
- Perform other ad-hoc tasks as assigned
Qualifications
- Bachelor's degree in Computer Science, Information Technology, or a related field.
- Minimum of 3 years of experience in information security, cybersecurity, or a related field.
- Experience with SIEM log analysis tools, such as Splunk.
- Knowledge of security in DNS, DHCP, TCP/IP, Active Directory, and network topologies.
- Experience with AWS, Azure/O365, and cloud PaaS security.
- Familiarity with security tools and technologies, including firewalls, intrusion detection systems, encryption technologies, and vulnerability scanners.
- Excellent analytical and problem-solving skills, with the ability to identify and resolve complex security issues.
- Strong communication and interpersonal skills, with the ability to present complex security concepts to both technical and non-technical audiences.